Jump to content

Computer Won't Run TDSSKiller or aswMBR


Recommended Posts

Hello,

I got a virus a few weeks back where all my desktop icons disappeared. I downloaded ESET Smart Security, and it says that it's the w32 Olimarik virus, but it can't fix it. I proceeded to try to install TDSSKiller and aswMBR in safe mode, but neither will run after I click on them. I ran Combo fix, and Spy bot, and those both removed issues, but I still can't open TDSSKiller or aswMBR. I then ran ListParts 64 by Farbar, and here's the log from that: I'm not sure how to read the results or what next steps to take. Any help would be appreciated! Thanks!

ListParts by Farbar Version: 30-10-2012

Ran by jascanta (administrator) on 28-11-2012 at 07:41:25

Windows 7 (X64)

Running From: F:\

Language: 0409

************************************************************

========================= Memory info ======================

Percentage of memory in use: 20%

Total physical RAM: 6051.18 MB

Available physical RAM: 4830.9 MB

Total Pagefile: 12100.47 MB

Available Pagefile: 10972.55 MB

Total Virtual: 8192 MB

Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: (OS) (Fixed) (Total:451 GB) (Free:128.62 GB) NTFS ==>[system with boot components (obtained from reading drive)]

4 Drive f: (STORE'N'GO) (Removable) (Total:0.48 GB) (Free:0.06 GB) FAT

Disk ### Status Size Free Dyn Gpt

-------- ------------- ------- ------- --- ---

Disk 0 Online 465 GB 0 B

Disk 1 Online 491 MB 0 B

Partitions of Disk 0:

===============

Partition ### Type Size Offset

------------- ---------------- ------- -------

Partition 1 OEM 100 MB 1024 KB

Partition 2 Primary 14 GB 101 MB

Partition 3 Primary 451 GB 14 GB

Partition 4 Primary 10 MB 465 GB

======================================================================================================

Disk: 0

Partition 1

Type : DE

Hidden: Yes

Active: No

There is no volume associated with this partition.

======================================================================================================

Disk: 0

Partition 2

Type : 07

Hidden: No

Active: No

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 2 Recovery NTFS Partition 14 GB Healthy System (partition with boot components)

======================================================================================================

Disk: 0

Partition 3

Type : 07

Hidden: No

Active: No

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 3 C OS NTFS Partition 451 GB Healthy Boot

======================================================================================================

Disk: 0

Partition 4

Type : 17 (Suspicious Type)

Hidden: Yes

Active: Yes

There is no volume associated with this partition.

======================================================================================================

Partitions of Disk 1:

===============

Partition ### Type Size Offset

------------- ---------------- ------- -------

Partition 1 Primary 490 MB 16 KB

======================================================================================================

Disk: 1

Partition 1

Type : 0E

Hidden: No

Active: Yes

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 4 F STORE'N'GO FAT Removable 490 MB Healthy

======================================================================================================

****** End Of Log ******

Link to post
Share on other sites

Hello jascanta and welcome to MalwareBytes forums.

Running Combofix on your own, without trained guided help, runs a risk of turning your system into a brick.

Plus you have tried too many tools on your own, as well.

Please do NOT get or run any other tools by yourself. Just only do what I guide you to.

Is this a home system? or is it used for business or organizational purposes?

Is drive F a removable USB-flash drive?

Is C drive your system drive? Is it a Windows 7 ? What antivirus is installed?

As much as possible, put the tools we download onto the Windows DESKTOP, save them, and only then run them from there.

Since this is WIN7, on most tools you need to do a Right click and select Run as Administrator.

Step 1

1. Go >> Here << and download ERUNT

(ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)

2. Install ERUNT by following the prompts

(use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)

3. Start ERUNT

(either by double clicking on the desktop icon or choosing to start the program at the end of the setup)

4. Choose a location for the backup

(the default location is C:\WINDOWS\ERDNT which is acceptable).

5. Make sure that at least the first two check boxes are ticked

6. Press OK

7. Press YES to create the folder.

Step 2

To show all files:

  • Go to your Desktop
  • Double-Click the Computer icon.
  • From the menu options, Select Tools, then Folder Options.
  • Next click the View tab.
  • Locate and uncheck Hide file extensions for known file types.
  • Locate and uncheck Hide protected operating system files (Recommended).
  • Locate and click Show hidden files and folders and drives.
  • Click Apply > OK.

Step 3

Download DDS and save it to your desktop from http://download.bleepingcomputer.com/sUBs/dds.com here

or http://download.bleepingcomputer.com/sUBs/dds.scr or

http://www.infospyware.net/sUBs/dds

Disable any script blocker if your antivirus/antimalware has it.

Then double click dds.scr to run the tool.

DDS will run in a command prompt window and will take 3 to 4 minutes or so.

  • When done, DDS will open two (2) logs:
  • DDS.txt
  • Attach.txt
  • Save both reports to your desktop.

Please Copy & Paste contents of the following logs in your next reply:
DDS.txt
Attach.txt
Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Always Copy all contents of log and Paste directly into main-body of reply box.

Do not use the attach option. If needed, use separate replies for each log.

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.